Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
slider by 10web vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2024-10565
The Slider by 10Web WordPress plugin prior to 1.2.62 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multi...
Unknown Slider By 10web
6.1
CVSSv3
CVE-2024-10566
The Slider by 10Web WordPress plugin prior to 1.2.62 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multi...
Unknown Slider By 10web
5.4
CVSSv3
CVE-2024-6026
The Slider by 10Web WordPress plugin prior to 1.2.56 does not sanitise and escape some of its Slide options, which could allow authenticated users with access to the Sliders (by default Administrator, however this can be changed via the Slider by 10Web WordPress plugin prior to 1...
10web Slider
4.8
CVSSv3
CVE-2024-8283
The Slider by 10Web WordPress plugin prior to 1.2.59 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multi...
10web Slider
8.8
CVSSv3
CVE-2021-24132
The Slider by 10Web WordPress plugin, versions prior to 1.2.36, in the bulk_action, export_full and save_slider_db functionalities of the plugin were vulnerable, allowing a high privileged user (Admin), or medium one such as Contributor+ (if "Role Options" is turn on fo...
10web Slider
7.1
CVSSv3
CVE-2024-32578
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10Web Slider by 10Web allows Reflected XSS.This issue affects Slider by 10Web: from n/a up to and including 1.2.54.
5.4
CVSSv3
CVE-2024-6408
The Slider by 10Web WordPress plugin prior to 1.2.57 does not sanitise and escape its Slider Title, which could allow high privilege users such as editors and above to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed
8.8
CVSSv3
CVE-2024-7150
The Slider by 10Web – Responsive Image Slider plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' parameter in all versions up to, and including, 1.2.57 due to insufficient escaping on the user supplied parameter and lack of sufficient prep...
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-42599
CVE-2025-3808
phpgurukul
insecure direct object reference
CVE-2025-3840
CVE-2025-43967
men salon management system
denial of service
virtuemart component for joomla
pritunl
LFI
CVE-2025-32433
CVE-2022-47112
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon